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(54) INFORMATION RECORDING/REPRODUCING SYSTEM 



(57) An infornnation recording nnedium 1 is provided 
with: a user data recording part 3 which records user 
data; a random-pattern-information recording part 4 
which records random pattern information from a ran- 
dom physical phenomenon; and an authentication data 
recording part 5 which records, as authentication data, 
medium identification information created on the basis 
of the random pattern Information detected from the 
random-pattern-lnformatlon recording part 4 and a dig- 
ital signature for each manufacturer with respect to the 
medium identification information. 
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Description 

Technical Field 

[0001] The present invention relates to an infornna- 5 
tion recording/playback system which prevents illegal 
copying of recording media, and to an information 
recording apparatus, an information playback appara- 
tus, an authentication data recording apparatus, an 
authentication processing apparatus, an information io 
recording/playback method, an information recording 
method, an information playback method, an authenti- 
cation data recording method, an information -recording- 
medium authentication method, and an information 
recording medium. is 

Background Art 

[0002] In recent years, apparatuses for transmitting 
and recording digital data such as music information 20 
and video information have come to be widely used in 
households. Since data can be recorded and read with 
high quality in these apparatuses, it is possible to con- 
struct a recording system in which there is no deteriora- 
tion in quality even if copying is performed repeatedly. 25 
Such a recording system must include a copyright pro- 
tection function to prevent copyrighted data from being 
illegally copied. 

[0003] As such a system for the protection of copy- 
right, for example, there is a content scrambling system 30 
in a digital video disc (DVD) ROM. 
[0004] In this system, all copyrighted data on a disk 
is encrypted and only an apparatus which has received 
a license is given an encryption key for obtaining mean- 
ingful data by decrypting encrypted data. The licensed 35 
apparatus is designed to conform with operation speci- 
fications so that illegal copying may not be performed. 
[0005] However, the method employed in a DVD 
system such as that described above is effective for 
ROM media, but it is not effective for RAM media in 40 
which data can be recorded by a user. The reason for 
this is that, in RAM media, although an unauthorized 
person cannot decrypt encrypted data, the person can 
newly create a disk which operates in an authorized 
apparatus by copying all the data on a disk to a new 45 
disk. 

Disclosure of the Invention 

[0006] Accordingly, an object of the present inven- so 
tion is to provide an information recording/playback sys- 
tem constituting an illegal-copying prevention system 
which is also effective for RAM media, and to provide an 
information recording apparatus, an information play- 
back apparatus, an authentication data recording appa- 55 
ratus, an authentication processing apparatus, an 
information recording/playback method, an information 
recording method, an information playback method, an 



authentication data recording method, an information- 
recording-medium authentication method, and an infor- 
mation recording medium. 

[0007] The present invention is an information 
recording/playback system for recording and playing 
back information and is characterized by comprising: an 
authentication data recording control part which pro- 
vides control of detecting random pattern information 
based on random physical phenomena from a random- 
pattern-information recording part used for recording 
such random-physical-phenomena-based random pat- 
tern information on an information recording medium; 
generating medium identification information from the 
random pattern information; and recording the medium 
identification information as authentication data in the 
authentication data recording part on the information 
recording medium; an authentication processing part 
which detects the random pattern information from the 
random-pattern-information recording part, generates 
medium-identification-information verification data from 
the random pattern information; reads authentication 
data from the authentication data recording part on the 
information recording medium; and performs authenti- 
cation processing for the information recording medium 
based on medium-identification-information verification 
data generated from the random pattern information 
and based on the authentication data; and an informa- 
tion recording/playback control part which provides con- 
trol of recording information on an information recording 
medium and playing back information from an informa- 
tion recording medium based on an authentication 
result from the authentication processing part. 
[0008] Furthermore, the present invention is an 
information recording apparatus for recording informa- 
tion on an information recording medium including: a 
random-pattern-information recording part which 
records random pattern information based on random 
physical phenomena; and an authentication data 
recording part which stores, as authentication data; 
medium identification information created according to 
random pattern information detected from the random- 
pattern -information recording part, and is characterized 
by comprising: a random-pattern-information detection 
part which detects random pattern information from the 
random-pattern-information recording part on the infor- 
mation recording medium; a verification data creation 
part which creates medium-identification-information 
verification data from random pattern information 
detected by the random-pattern-information detection 
part; an authentication processing part which reads 
authentication data from the authentication data record- 
ing part on the information recording medium; performs 
authentication processing for an information recording 
medium based on medium-identification-information 
verification data created by the verification data creation 
part and based on the authentication data; and controls 
whether to enable writing information onto an informa- 
tion recording medium based on an authentication 
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result; and a recording control part which provides con- 
trol of recording information onto an infornnation record- 
ing nriedium. 

[0009] Furthernnore, the present invention is an 
infornnation playback apparatus for playing back infor- 
mation from an information recording medium including: 
a random-pattern-information recording part which 
records random pattern information based on random 
physical phenomena; and an authentication data 
recording part which stores; as authentication data; 
medium identification information created according to 
random pattern information detected from the random- 
pattern -information recording part; and is characterized 
by comprising: a random-pattern-information detection 
part which detects random pattern information from the 
random-pattern-information recording part on the infor- 
mation recording medium; a verification data creation 
part which creates medium-identification-information 
verification data from random pattern information 
detected by the random-pattern-information detection 
part; an authentication processing part which reads 
authentication data from the authentication data record- 
ing part on the information recording medium, and per- 
forms authentication processing for an information 
recording medium based on medium-identification- 
information verification data created by the verification 
data creation part and based on the authentication data; 
and a playback control part which provides control of 
reading information from an information recording 
medium. 

[0010] In an authentication data recording appara- 
tus which records authentication information on an 

information recording medium, the present invention is 
characterized by comprising: a random-pattern-infor- 
mation detection part which detects random pattern 
information from a random-pattern-information record- 
ing part on an information recording medium used for 
recording random pattern information based on random 
physical phenomena; a medium identification informa- 
tion creation part which creates medium identification 
information from the random pattern information 
detected by the random-pattern-information detection 
part; and an authentication data recording control part 
which provides control of recording, as authentication 
data, medium identification information created by the 
medium identification information creation part by using 
an authentication data recording part on the information 
recording medium. 

[0011] In an authentication processing apparatus 
which performs authentication processing for an infor- 
mation recording medium, the present invention is char- 
acterized by comprising: a random -pattern -information 
detection part which detects random pattern information 
from a random-pattern-information recording part on 
the information recording medium; a verification data 
creation part which creates medium-identification-infor- 
mation verification data from random pattern informa- 
tion detected by the random-pattern-information 



detection part; and an authentication processing part 
which plays backs authentication data from a authenti- 
cation data recording part on an information recording 
medium and performs authentication processing for an 
5 information recording medium based on medium-identi- 
fication-information verification data created by the veri- 
fication data creation part and based on the 
authentication data. 

[0012] Further, the present invention is an informa- 

10 tion recording/playback method for recording and play- 
ing back information, and is characterized by 
comprising: an authentication data recording control 
process which detects random pattern information 
based on random physical phenomena from a random- 

15 pattern-information recording part used for recording 
random pattern information based on random physical 
phenomena on an information recording medium, cre- 
ates medium identification information from the random 
pattern information, and controls recording; as authenti- 

20 cation data; the medium identification information in an 
authentication data recording part on the information 
recording medium; an authentication process which 
detects the random pattern information from the ran- 
dom-pattern-information recording part; creates 

25 medium-identification-information verification data from 
the random pattern information; reads authentication 
data from an authentication data recording part on the 
information recording medium; and performs authenti- 
cation processing for the information recording medium 

30 based on medium-identification-information verification 
data created from the random pattern information and 
based on the authentication data; and an information 
recording/playback control process which provides con- 
trol of recording information on an information recording 

35 medium and playing back information from an informa- 
tion recording medium based on an authentication 
result from the authentication process. 
[0013] Furthermore, the present invention is an 
information recording method for recording information 

40 on an information recording medium including: a ran- 
dom-pattern-information recording part which records 
random pattern information based on random physical 
phenomena; and an authentication data recording part 
which stores, as authentication data, medium identifica- 

45 tion information created according to random pattern 
information detected from the random-pattern -informa- 
tion recording part; and is characterized by comprising: 
a random-pattern-information detection process which 
detects random pattern information from a random-pat- 
so tern -information recording part on an information 
recording medium; a verification data creation process 
which creates medium-identification-information verifi- 
cation data from random pattern information detected 
by the random-pattern-information detection process; 

55 an authentication process which reads authentication 
data from the authentication data recording part on an 
information recording medium; performs authentication 
processing for an information recording medium based 
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on medium-identification-infornnation verification data 
created by the verification data creation process and 
based on the authentication data; and controls whether 
to enable writing information onto an information record- 
ing medium based on an authentication result; and a 5 
recording control process which provides control of 
recording Information onto an Information recording 
medium. 

[0014] Furthermore, the present Invention is an 

information playback method for playing back informa- 10 
tion from an information recording medium including: a 
random-pattern-information recording part which 
records random pattern information based on random 
physical phenomena; and an authentication data 
recording part which stores; as authentication data, 15 
medium identification information created according to 
random pattern Information detected from the random- 
pattern -information recording part; and Is characterized 
by comprising: a random-pattern-information detection 
process which detects random pattern information from 20 
a random -pattern -information recording part on an 
Information recording medium; a verification data crea- 
tion process which creates medium-identification-infor- 
mation verification data from random pattern 
information detected by the random-pattern-information 25 
detection process; an authentication process which 
reads - authentication data from an authentication data 
recording part on the information recording medium; 
and performs authentication processing for an informa- 
tion recording medium based on medium-identification- 30 
Information verification data created by the verification 
data creation process and based on the authentication 
data; and a playback control process which controls 
reading information from an information recording 
medium. 35 
[0015] In an authentication data recording method 
which records authentication information on an informa- 
tion recording medium, the present invention is charac- 
terized by comprising: a random -pattern -information 
detection process which detects random pattern infor- 40 
mation from a random-pattern-information recording 
part on an information recording medium used for 
recording random pattern Information based on random 
physical phenomena; a medium identification informa- 
tion creation process which creates medium identifica- 45 
tion information from the random pattern information 
detected by the random-pattern-information detection 
part; and an authentication data recording control proc- 
ess which provides control of recording, as authentica- 
tion data; medium identification information created by so 
the medium identification information creation process 
by using an authentication data recording part on the 
information recording medium. 

[0016] In an authentication processing method 
which performs authentication processing for an infor- 55 
mation recording medium, the present invention is char- 
acterized by comprising: a random-pattern-information 
detection process which detects random pattern infor- 



mation from a random-pattern-lnformatlon recording 
part on an information recording medium; a verification 
data creation process which creates medium-identifica- 
tion-information verification data from random pattern 
information detected by the random-pattern-information 
detection process; and an authentication process which 
plays back authentication data from an authentication 
data recording part on an information recording 
medium, and performs authentication processing for an 
Information recording medium based on medium-identi- 
fication-information verification data created by the veri- 
fication data creation process and based on the 
authentication data. 

[0017] With respect to information recording 

medium for recording information, the present invention 
is characterized by comprising: a random-pattern-infor- 
mation recording part which records random pattern 
Information based on random physical phenomena; an 
authentication data recording part which stores, as 
authentication data, medium identification information 
created according to random pattern information 
detected from the random-pattern -information recording 
part; and an Information recording part for recording 
information. 

Brief Description of the Drawings 
[0018] 

FIG. 1 is a view illustrating an optical disk to which 
the present Invention Is applied; 
FIG. 2 is a block diagram showing the construction 
of an authentication data recording apparatus for 
recording authentication data on the optical disk; 
FIG. 3 is a flowchart showing specific processing 
contents of an authentication data creation part in 
the authentication data recording apparatus; 
FIG. 4 is a block diagram showing the construction 
of an optical disk recording/playback apparatus 
which uses the optical disk; 

FIG. 5 is a flowchart showing specific processing 
contents of an authentication processing part in the 
optical disk recording/playback apparatus; 
FIG. 6 is a view showing a revocation list used for 
authentication processing by the authentication 
processing part; 

FIG. 7 is a view showing a public key list used for 
authentication processing by the authentication 

processing part; 

FIG. 8 is a block diagram showing the construction 
of an encryption part of a recording/playback circuit 
of the optical disk recording/playback apparatus; 
FIG. 9 Is a view schematically showing the structure 
of data recorded on an optical disk by the optical 
disk recording/playback apparatus; 
FIG. 1 0 Is a block diagram showing the construction 
of a decryption part of the recording/playback cir- 
cuit in the optical disk recording/playback appara- 
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tus; 

FIG. 11 is a flowchart showing the operation of a 
recording nnode of the optical disk recording/play- 
back apparatus; 

FIG. 12 is a flowchart showing the operation of a 5 
playback mode of the optical disk recording/play- 
back apparatus; 

FIG. 13 is a block diagrann showing another exann- 
ple of the construction of an encryption part of the 
recording/playback circuit in the optical disk record- io 
ing/playback apparatus; 

FIG. 14 is a block diagrann showing another exann- 
ple of the construction of a decryption part of the 
recording/playback circuit in the optical disk record- 
ing/playback apparatus; and is 
FIG. 15 is a view illustrating a card-shaped infornna- 
tion recording medium to which the present inven- 
tion is applied. 

Best Mode For Carrying Out the Invention 20 

[0019] The best mode for carrying out the present 
invention is described in detail below with reference to 

the drawings. 

[0020] The present invention is applied to a record- 25 
ing/playback system employing, for example, an optical 
disk 1 having a construction such as that shown in FIG. 
1. 

[0021] The optical disk 1 shown in FIG. 1 is a disk 
medium into which and from which information can be 30 
recorded/played back, and has a user data recording 
part 3, a random-pattern-information recording part 4, 
and an authentication data recording part 5, which are 
three information recording areas formed .annularly 
around a center hole 2 at the center. The user data 35 
recording part 3, the random-pattern-information 
recording part 4, and the authentication data recording 
part 5 are placed, for example, so as to be separated in 
a two-dimensional manner or separated in a three- 
dimensional manner so that these parts can be 40 
accessed independently of each other in order to read 
information. 

[0022] In this optical disk 1 , the information record- 
ing area is separated in a two-dimensional manner in 
the radial direction of the disk, thereby forming the, user 45 
data recording part 3, the random -pattern -information 
recording part 4, and the authentication data recording 
part 5. 

[0023] In this optical disk 1 , the user data recording 
part 3 formed in the periphery thereof is a data area in so 
which user data is recorded or played back. Namely, this 
area records contents such as video, music, and the 
like. 

[0024] Also, the random-pattern-information 
recording part 4 which is formed in a central part thereof ss 
is a read-only area in which random pattern information 
based on random physical phenomena is recorded. 
[0025] This random-pattern-information recording 



part 4 is formed by randomly scattering, for example, 
fine magnetized fibers in the area of this random-pat- 
tern-information recording part 4 and by fixing them 
when the medium is manufactured. The random-pat- 
tern-information recording part 4 formed in this manner 
is one in which the random pattern information in the 
fine magnetized fibers is recorded so that it can be 
detected. 

[0026] The random -pattern -information recording 

part 4 may be such that bits are randomly formed and 
the jitter thereof can be detected as random pattern 
information. 

[0027] Furthermore, the authentication data record- 
ing part 5 which is formed in the outer periphery of the 
random- pattern-information recording part 4 is an area 
in which medium identification information created 
based on the random pattern information detected from 
the random-pattern-information recording part 4 and a 
digital signature for each manufacturer with respect to 
the medium identification information are recorded as 
authentication data. This authentication data recording 
part 5 is provided in a lead-in area. 
[0028] In the optical disk 1 having such a construc- 
tion, authentication data is recorded in the authentica- 
tion data recording part 5 by an authentication data 
recording apparatus 10 constructed, for example, as 
shown in FIG. 2. 

[0029] This authentication data recording appara- 
tus 10 shown in FIG. 2 comprises a spindle motor 12 
controlled by a servo circuit 1 1 , a recording/playback 
head 13 which optically scans the information recording 
surface of the optical disk 1 , a random-pattern-informa- 
tion detection part 14 for detecting random pattern infor- 
mation from the random-pattern-information recording 
part 4 of the optical disk 1 , a medium-identification-infor- 
mation creation part 15 for creating medium identifica- 
tion information r, an authentication data creation part 
16 for creating authentication data, and a control sec- 
tion 18 for controlling the servo circuit 11 and the 
authentication data creation section 1 6 on the basis of 
the setting information input from an input operation 
section 17. 

[0030] The spindle motor 12 drivingly rotates the 
optical disk 1 , for example, at a constant linear velocity 
under the control of the servo circuit 1 1 . 
[0031] The recording/playback head 13, which 
comprises an optical head for optically scanning the 
authentication data recording part 5 of the optical disk 1 
which is drivingly rotated by the spindle motor 12, 
records and plays back authentication data via the 
authentication data recording part 5. 
[0032] The random-pattern-information detection 
part 14 comprises a magnetic head for scanning the 
random-pattern-information recording part 4 of the opti- 
cal disk 1 which is drivingly rotated by the spindle motor 
12, and detects in an analog manner the random pat- 
tern information from the random-pattern-information 
recording part 4. This random-pattern-information 
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detection part 14 supplies the random pattern Informa- 
tion detected from the random-pattern-information 
recording part 4 to the medium-identification-informa- 
tion creation part 15. 

[0033] The medlum-identlfication-information crea- 5 
tion part 15 converts the random pattern information 
detected in an analog manner by the random-pattern- 
information detection part 14 into digital random pattern 
Information, and supplies this Information as medium 
identification information r to the authentication data io 
creation part 16. 

[0034] The authentication data creation part 16 
affixes a digital signature for each manufacturer with 
respect to the medium identification information r, to the 
medium identification information r supplied from the i5 
medium identification information creation part 15 in 
order to use It as authentication data. 
[0035] Here, In creating authentication data to 
which a digital signature for each manufacturer is 
affixed by the authentication data creation part 16, the 20 
manufacturer for the recording medium uses a trusted 
center (TC), and registers Its own public key required for 
the verification of the digital signature in the TC so as to 
request the TC to issue a certificate (Cert) in advance. 
The certificate (Cert) is data in which the TC has made 25 
a digital signature on the identification information ID of 
the manufacturer, the public key, etc. 
[0036] The digital signature technology is a technol- 
ogy capable of certifying that a person who created par- 
ticular data is a particular user. For example, an elliptic 30 
curve digital signature algorithm (EC-DSA) method 
used In the IEEE PI 363 is well known. 
[0037] In this authentication data recording appara- 
tus 10, as the specific processing contents of the 
authentication data creation part 16 are shown In FIG. 35 
3, additional information u such as the manufacturing 
date of the medium and the manufacturer ID is added to 
the medium identification information r supplied from 
the medium identification information creation part 15 in 
order to create data m (step SI ). For this data m, digital 40 
signature data s is created by using a secret key for 
each manufacturer corresponding to the public key reg- 
istered In the trusted center (step S2). 
[0038] The additional information u is data which 
may be added to the medium identification information r 45 
as required. 

[0039] Then, the authentication data creation part 
1 6 combines the data In, the digital signature data s, the 

certificate (Cert) data, and the revocation list into 
authentication data w (step S3), and supplies this so 
authentication data w to the recording/playback head 13 
(step S4), whereby it is written in the authentication data 
recording part 5 of the optical disk 1 . 
[0040] Here, the additional information u, the secret 
key for each manufacturer, and the certificate (Cert) 55 
data are input, for example, from the input operation 
part 17 to the control part 18, whereby it is provided 
from the control part 1 8 to the authentication data crea- 



tion part 1 6. 

[0041] In this authentication data recording appara- 
tus 10, the revocation list provided from the trusted 
center Is input from the input operation part 17 to the 
control part 1 8, whereby the revocation list is provided 
from the control part 18 to the authentication data crea- 
tion part 1 6 so that the revocation list can be recorded in 
the authentication data recording part 5 of the optical 
disk 1 . In the authentication data recording part 5 of the 
optical disk 1 , the latest revocation list provided from the 
trusted center is recorded. 

[0042] Here, the revocation list is such that the 
trusted center has made a digital signature on the ver- 
sion number thereof which increases monotonously and 
the identification information ID of the manufacturer to 
which the secret key has been revealed and which is 
determined to have committed a fraud. 
[0043] The manufacturer of the recording medium 
is able to manufacture the optical disk 1 in which the 
data in, the digital signature data s, the certificate (Cert) 
data, and the revocation list are recorded as authentica- 
tion data w in the authentication data recording part 5 by 
the authentication data recording apparatus 10 con- 
structed as described above. 

[0044] The optical disk 1 having such a construction 
is capable of verifying the validity by authentication 
processing by the random pattern information detected 
from the random-pattern-information recording part 4 in 
which random pattern information from a random phys- 
ical phenomenon Is recorded, and the authentication 
data recorded in the authentication data recording part 
1 6. The random pattern Information recorded in the ran- 
dom-pattern-information recording part 4 cannot be 
reproduced because it is from a random physical phe- 
nomenon. 

[0045] In the optical disk 1 having a construction 
such as that described above, data is recorded or 
played back, for example, by an optical disk record- 
ing/playback apparatus 20 having a construction such 
as that shown In FIG. 4. 

[0046] The optical disk recording/playback appara- 
tus 20 shown in FIG. 4 comprises a spindle motor 22 
controlled by a servo circuit 21; a recording/playback 
head 23 which optically scans the information recording 
surface of the optical disk 1 ; a random-pattern-informa- 
tion detection part 24 for detecting random pattern infor- 
mation from the random-pattern-information recording 
part 4 of the optical disk 1 ; a medium-ldentiflcatlon-lnfor- 
mation verification-data creation part 25 for creating 
medium-identification-information verification data r'; an 
authentication processing part 26; a recording/playback 
part 27; and a control part 19 for controlling the servo 
circuit 21 and the recording/playback part 27 on the 
basis of setting Information input from an Input opera- 
tion part 28. 

[0047] The spindle motor 22 drivingly rotates the 

optical disk 1 , for example, at a constant linear velocity 
under the control of the servo circuit 21 . 
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[0048] The recording/playback head 23 comprises 

an optical head for optically scanning the information 
recording surface of the authentication data recording 
part 5 of the optical disk 1 which is drivingly rotated by 
the spindle motor 22. The recording/playback head 23 5 
plays back the authentication data recorded In the 
authentication data recording part 5, and records data 
on and plays back data from the user data recording 
part 3. 

[0049] The random-pattern-information detection 10 
part 24 comprises a magnetic bead for scanning the 
random-pattern-information recording part 4 of the opti- 
cal disk 1 which is drivingly rotated by the spindle motor 
22, and detects in an analog manner random pattern 
information from the random-pattern-information 15 
recording part 4. This random-pattern-information 
detection part 24 supplies the random pattern Informa- 
tion detected from the random -pattern -information 
recording part 4 to the medium-identification-informa- 
tion verification-data creation part 25. 20 
[0050] The medium-identification-information verifi- 
cation-data creation part 25 accomplishes a conversion 
from information detected by the random -pattern -infor- 
mation detection part 24 in an analog manner to digital 
random pattern information and supplies this Informa- 25 
tion as medium-identiflcatlon-lnformation verification 
data r" to the authentication processing part 26. 
[0051] The authentication processing part 26 per- 
forms a process for authenticating that the optical disk 1 
Is manufactured by an authorized manufacturer. The 30 
recording/playback part 27 supplies this authentication 
processing part 26 with authentication data w^ which is 
read by the recording/playback head 23 from the 
authentication data recording part 5 of the optical disk 1 . 
The authentication processing part 26 performs an 35 
authentication process on the basis of the medium- 
identification-information verification data r' supplied 
from the medium-identification-information creation part 
25 and the authentication data w^. 

[0052] The specific processing contents of the 40 
authentication processing part 26 are shown in FIG. 5. 
[0053] More specifically, when the medium-identifi- 
cation-information verification data r" and the authenti- 
cation data w^ are input (step S11), initially, the 
authentication processing part 26 verifies the validity of 45 
the revocation list which is entered in the authentication 
data w^, that is, the validity of the digital signature of the 
trusted center, by using the public key of the trusted 
center (step S1 2). The public key of the trusted center is 
common to the entire system, and is stored in a nonvol- so 
atlle memory within the apparatus when the apparatus 
Is manufactured. 

[0054] As a result of the verification of the revoca- 
tion list, when the revocation list is valid, the version 
number of the revocation list is verified (step SI 3). 55 
When the revocation list is compared with the currently 

stored revocation list and the version number is newer, 
the revocation list is stored in the nonvolatile memory 



(step SI 4). A revocation list such as that shown In FIG. 
6 is stored in the nonvolatile memory. 
[0055] Next, the certificate (Cert) data in the 
authentication data w^ is extracted (step SI 5). It is veri- 
fied that the identification information ID of the manufac- 
turer contained in the certificate (Cert) data is not in the 
revocation list stored in the nonvolatile memory (step 
SI 6). Furthermore, it is verified that the digital signature 
of the trusted center, contained in the certificate (Cert) 
data, is correct (step SI 7). 

[0056] When this verification is passed, data m^ 
and digital signature data s^ are extracted from the 
authentication data w^ (step SI 8). It is verified by using 
the public key of the manufacturer in the certificate 
(Cert) data that the digital signature data s^ in the 
authentication data w^ is a correct digital signature of 
the manufacturer with respect to the data m'^ (step SI 9). 
[0057] When this verification is passed, the verifica- 
tion result J2 is assumed to be passed (step S20). 
[0058] Next, medium identification information r^ 
and additional information u^ are extracted from the 
authentication data w^ (step S21). 
[0059] Then, the medium identification information 
r^ extracted from the authentication data w^ is com- 
pared with the medium-identification-information verifi- 
cation data r' created by the medlum-identlfication- 
information creation part 25 In order to verify that the dif- 
ference is within a predetermined error (step S22). This 
example uses an allowable error in consideration of a 
possible error due to noises because digital medium- 
Identification -Information verification data r' Is generated 
from random pattern information detected as an analog 
signal. No allowable error needs to be used when ran- 
dom pattern information is digitally recorded and read. 
[0060] When this verification is passed, the verifica- 
tion result J1 is assumed to be passed (step S23). 
[0061] When both the verification result J1 and the 
verification result J2 are passed, this recording medium 
is determined to be an authorized one, and the medium 
identification information r'^ is supplied as authenticated 
medium identification information DIscID to the record- 
ing/playback part 27 (step S24). 
[0062] Here, the nonvolatile memory may store a 
public key list such as that shown in FIG. 7. 
[0063] In this case, the public key list stores the 
identification information ID of the manufacturer, the 
public key thereof, and a flag indicating whether or not 
the identification Information ID is revoked. Further- 
more, the public key list stores the version number of the 
latest version of the revocation lists which have been 
handled by the apparatus. 

[0064] When this apparatus obtains a valid revoca- 
tion list which is newer than any of those bandied by the 

apparatus from the data w^, a revocation flag corre- 
sponding to the identification information ID given in that 
list Is set to "YES", that is. Is set to be revoked. 
[0065] If the identification information ID is not in the 
table by that time, the item thereof is newly created and 
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the flag is set to "YES". 
[0066] In contrast, for those in which the identifica- 
tion infornnation ID is not contained in the latest revoca- 
tion list, although it is in the table stored by the 
apparatus, all the flags are set to "NO", that is, are set 5 
not to be revoked. Then, the item of the latest version 
number is updated. 

[0067] When the certificate (Cert) data extracted 
from the authentication data is to be verified, the 
identification information ID of the manufacturer is io 
checked. If the item of the identification information ID is 
in the stored list, the public key is recorded, and the rev- 
ocation flag is "NO", the verification of the certificate 
(Cert) data is not necessary, and the public key 
recorded in the table is used. is 
[0068] When the item of the identification informa- 
tion ID is in the list, the flag is "NO", and the public key 
is not recorded, the certificate (Cert) data is verified, 
and when it is correct, the public key is stored in the 
table. 20 
[0069] When the item of the identification informa- 
tion ID is in the list and the flag is "YES", the result of the 
verification J2 is assumed to be invalidated. 
[0070] When the item of the identification informa- 
tion ID is not in the list, the certificate (Cert) data is ver- 25 
ified. When it is correct, an item corresponding to the 
identification information ID is newly created, and the 
public key is stored. At this time, the flag is set to "NO". 
[0071] As a result of having a public key list in this 
manner, in many cases, a medium manufactured by the 30 
same manufacturer is used; in most cases of a second 
time and thereafter, it is possible to omit the verification 
of the certificate (Cert) data. 

[0072] In this optical disk recording/playback appa- 
ratus 20, the operations mode of the recording/playback 35 
part 27 is switched by the control part 29 in accordance 
with a control command input from the input operation 
part 28. This recording/playback part 27 comprises an 
encryption part 30 and a decryption part 40. In the 
recording mode, user data input from an external 40 
source is encrypted by the encryption part 30, and the 
encrypted user data is recorded in the user data record- 
ing part 3 of the optical disk 1 via the recording/playback 
head 23. Also, in the playback mode, encrypted user 
data which is read from the user data recording part 3 of 45 
the optical disk 1 by the recording/playback head 23 is 
decrypted by the decryption part 40, and is output to an 
external source. 

[0073] The encryption part 30, as the specific con- 
struction thereof is shown in FIG. 8, comprises a Kem 50 
generation module 31 , a random number generation cir- 
cuit 32, a Kd encryption/decryption circuit 33, a Ks 
encryption circuit 34, and a content data encryption cir- 
cuit 35. 

[0074] The Kem generation module 31 comprises a 55 
Km memory 31 A having a master key Km stored 

therein, and a hash function circuit 31 B to which the 
master key Km is supplied from the Km memory 31 A 
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and to which authenticated medium identification infor- 
mation DiscID is supplied from the authentication 
processing part 26. 

[0075] The master key Km is a secret key which is 
given when the license of copyright is received. 
[0076] The hash function circuit 31 B concatenates 

an n-bit master key Km and an m-bit medium identifica- 
tion information DiscID in order to create (n -i- m)-bit 
concatenated data (DiscID II Km) in which, for example, 
the low-order bits are the master key Km and the high- 
order bits are the medium identification information Dis- 
cID, and applies a hash function H to the created con- 
catenated data (DiscID II Km), as shown in the following 
equation (1): 

Kem= H(DisclD II Km) (1) 

in order to create an effective master key Kem. Then, 
the hash function circuit 31 B supplies the Kd encryp- 
tion/decryption circuit 33 with the master key Km and 
the effective master key Kem created from the authenti- 
cated medium identification information DiscID. 
[0077] Here, "11" of A II B means the concatenation 
of data A and data B. Also, the hash function is a func- 
tion which outputs data of a fixed length, for example, 64 
bits or 128 bits, with respect to input data of an arbitrary 
length, and is a function such that, when y ( =hash (x)) 
is given, determination of x is difficult and determination 
of the set of x1 and x2 in which hash (x1) = hash (x2) 
is also difficult. As representative one-direction hash 
functions, MD5 (Message Digest) and SHA (Secure 
Hash Algorithm) are known. This one-direction hash 
function is described in detail in "Applied Cryptography 
(Second Edition), Wiley" written by Bruce Schneier. 
[0078] Furthermore, the random number genera- 
tion circuit 32 generates random numbers in which ran- 
dom numbers are used as a sector key Ksi and a disk 
key Kd, supplies the sector key Ksi to the Ks encryption 
circuit 34 and the content data encryption circuit 35, and 
supplies the disk key Kd to the Kd encryption/decryption 
circuit 33 and the Ks encryption circuit 34. 
[0079] The Kd encryption/decryption circuit 33 
encrypts, by the effective master key Kern, the disk key 
Kd supplied from the random number generation circuit 
32 in order to create an encrypted disk key EKd. This 
encrypted disk key Ekd created by the Kd encryp- 
tion/decryption circuit 33 is recorded in the lead-in area 
of the optical disk 1 via the recording/playback head 23. 
Also, this Kd encryption/ decryption circuit 33 decrypts 
the encrypted disk key Ekd read from the lead-in area of 
the optical disk 1 via the recording/playback head 23 in 
order to create a disk key Kd. This disk key Kd created 
by the Kd encryption/decryption circuit 33 is supplied to 
the Ks encryption circuit 35. 

[0080] Also, the Ks encryption circuit 34 encrypts, 
by the disk key Kd, the sector key Ksi supplied from the 

random number generation circuit 32 in order to create 
an encrypted sector key EKs. This encrypted sector key 
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EKs created by the Ks encryption circuit 34 is recorded 
in the data area of the optical disk 1 via the record- 
ing/playback head 23. 

[0081] Furthermore, the content data encryption 
circuit 35 creates encrypted content data by encrypting, 5 
by the sector key Ksi, the user data supplied as content 
data from an external source. 

[0082] This encrypted content data created by the 
content data encryption circuit 35 is recorded in the data 
area of the optical disk 1 via the recording/playback io 
head 23. 

[0083] Here, the data area of the optical disk 1 is 
formed of a plurality of sectors Si (i = 1 ,2. ...), as shown 
in FIG. 9. Each sector Si (i = 1. 2, ...) is formed of the 
header and the main data part. An encrypted sector key is 
EKsi (i = 1 ,2, ...) in which the sector key Ksi is encrypted 
by the disk key Kd is stored in the header of each sector 
Si, and encrypted content data in which the user data is 
encrypted by the sector key Ksi is stored in the main 
data part of each sector Si. The above 1 = 1,2,... indi- 20 
cates the sector number. For simplicity, sector numbers 
are omitted in a part of figures and descriptions. 
[0084] The decryption part 40, as the specific con- 
struction thereof is shown in FIG. 10, comprises a Kem 
generation module 41 , an EKd decryption circuit 43. an 25 
EKs decryption circuit 44. and a content data decryption 
circuit 45. 

[0085] The Kem generation module 41 comprises a 
Km memory 41 A having stored therein a master key Km 
which is a secret key which is given when the license of 30 
the copyright is received, and comprises a hash func- 
tion circuit 41 B which generates an effective master key 
Kem by a computation process shown in equation (1) 
described above from the master key Km supplied from 
the Km memory 41 A and the authenticated medium 35 
identification information Disci D provided from the 
authentication processing part 26. The hash function 
circuit 41 B supplies the EKd decryption circuit 43 with 
the master key Km and the effective master key Kern 
created from the authenticated medium identification 40 
information DisclD. 

[0086] This Kem generation module 41 is con- 
structed similarly to the Kem generation module 31 of 
the encryption part 30, and may also be used as the 
Kern generation module 31 . 45 
[0087] The EKd decryption circuit 43 creates the 
disk key Kd by decrypting, by the effective master key 
Km, the encrypted disk key Ekd read from the lead-in 
area of the optical disk 1 by the recording/playback 
head 23, and supplies the decrypted disk key Kd to the so 
EKs decryption circuit 44. 

[0088] The EKs decryption circuit 44 creates a sec- 
tor key Ks by decrypting, by the disk key Kd, the 
encrypted sector key EKs read from the data area of the 
optical disk 1 by the recording/playback head 23, and ss 
supplies the decrypted sector key Ks to the content data 
decryption circuit 45. 

[0089] The content data decryption circuit 45 



decrypts, by the sector key Ks, the encrypted content 
data read from the data area of the optical disk 1 by the 
recording/playback head 23. 

[0090] In the optical disk recording/playback appa- 
ratus 20 constructed as described above, when a 
recording mode is set in the control part 29 as a result 
of a recording command being input from the input 
operation part 28, the control part 29 controls the 
recording/playback part 27 so that the user data is 
recorded in the optical disk 1 in accordance with the 
procedure such as that shown in the flowchart of FIG. 
11. 

[0091] In the following description, it is assumed 
that authentication processing has already been per- 
formed on the optical disk 1 by the authentication 
processing part 26 and user data is recorded on the 
optical disk 1 which is authenticated to be an authorized 
one. 

[0092] In the recording mode, the encryption part 
30 of the recording/playback part 27 is in an operating 
state, and the Kem generation module 31 of the encryp- 
tion part 30 receives the authenticated medium identifi- 
cation information DisclD from the authentication 
processing part 26 (step S31 ), reads the master key Km 
from the Km memory 31 A (step S32), and causes the 
hash function circuit 31 B to create an effective master 
key Kem from the medium identification information Dis- 
clD and the master key Km (step S33). 
[0093] Next, the Kd encryption/decryption circuit 33 
determines whether or not the encrypted disk key Ekd 
has been recorded in the lead-in area of the optical disk 
1 (step S34). 

[0094] Then, when the encrypted disk key Ekd has 
not been recorded, the Kd encryption/decryption circuit 
33 uses a random number of, for example, 40 bits, gen- 
erated by the random number generation circuit 32 as a 
disk key Kd (step S35), creates an encrypted disk key 
Ekd by encrypting this disk key Kd by the effective mas- 
ter key Kem, and records this encrypted disk key Ekd in 
the lead-in area of the optical disk 1 (step S36). 
[0095] When the encrypted disk key Ekd has been 
recorded, the Kd encryption/decryption circuit 33 
obtains the disk key Kd by decrypting the encrypted disk 
key Ekd by the effective master key Km (step S37). 
[0096] Next, the Ks encryption circuit 34 uses the 
40-bit random number generated by the random 
number generation circuit 32 as a sector key Ksi (step 
S38), creates an encrypted sector key EKsi by encrypt- 
ing this sector key Ksi by the disk key Kd, and records 
this encrypted sector key EKsi in the sector header 
(step S39). 

[0097] Then, the content data encryption circuit 35 
creates encrypted content data by encrypting the user 
data by the sector key Ksi, and records this encrypted 
content data in the main data part (step S40). 
[0098] Furthermore, the content data encryption 
circuit 35 determines whether or not all the user data to 
be recorded has been recorded (step S41). When there 



9 



17 



EP 1 069 567 A1 



18 



is user data to be recorded, the next sector is accessed 

(step S42), and the process returns to step S38, 
whereby processing from step S38 to step S42 is per- 
formed repeatedly. 

[0099] When all the user data has been recorded 
completely in the data area of the optical disk 1 in this 
manner, the recording mode is terminated. 
[0100] Also, in this optical disl< recording/playback 
apparatus 20, when a playback mode is set in the con- 
trol part 29 as a result of a recording command being 
input from the input operation part 28, the control part 
29 controls the recording/playback part 27 so that the 
user data is read from the optical disk 1 in accordance 
with the procedure such as that shown in the flowchart 
of FIG. 12. 

[0101] In the following description, it is assumed 
that authentication processing has already been per- 
formed on the optical disk 1 by the authentication 
processing part 26 and user data is read from the opti- 
cal disk 1 which is authenticated to be an authorized 
one. 

[0102] In the playback mode, the decryption part 40 

of the recording/playback part 27 is in an operating 
state. The Kem generation module 41 of the decryption 
part 40 receives authenticated medium identification 
information Disci D from the authentication processing 
part 26 (step S51), reads the master key Km from the 
Km memory 41 A (step S52), and causes the hash func- 
tion circuit 41 B to create an effective master key Kem 
from the medium identification information DiscID and 
the master key Km (step S53). 

[0103] Next, the EKd decryption circuit 43 creates 
the disk key Kd by decrypting, by the effective master 
key Kem, the encrypted disk key Ekd read from the 
lead-in area of the optical disk 1 (step S54). 
[0104] Next, the EKs decryption circuit 44 creates a 
sector key Ksi by decrypting the encrypted sector key 
EKsi read from the data area of the optical disk 1 (step 

555) . 

[0105] Then, the content data decryption circuit 45 
decrypts, by the sector key Ks, the encrypted content 
data read from the data area of the optical disk 1 (step 

556) . 

[0106] Furthermore, the content data decryption 
circuit 45 determines whether all the content data to be 
read has been read (step S57). When there is content 
data to be read, the next sector is accessed (step S58), 
and the process returns to step S25, whereby process- 
ing from step S55 to step S58 described above is per- 
formed repeatedly. 

[0107] When all the required content data has been 
completely read from the data area of the optical disk 1 
in this manner, the playback mode is terminated. 
[0108] On the optical disk 1 of which user data 
recording part 3 records user data by means of the opti- 
cal disk recording/playback apparatus 20, the data area 
records the encryption key for the user data, that is, the 
sector key Ks, as the encrypted sector key EKs 



encrypted by the disk key Kd. Furthermore, the lead-in 
area records the disk key Kd as an encrypted disk key 
Ekd which is encrypted by the effective master key Kem 
created on the basis of the master key Km and the 

5 medium identification information DiscID unique to this 
optical disk 1 . Therefore, playing back the user data is 
only available on an authorized playback apparatus 
having the master key Km and an authentication 
processing function for performing authentication 

10 processing on the medium identification information 
DiscID based on the medium-identification-information 
verification data created according to the random pat- 
tern information recorded in the random-pattern-infor- 
mation recording part 4 of the optical disk 1 and based 

75 on the authentication data recorded in the authentica- 
tion data recording part 5. Decrypting and playing back 
the user data is impossible on a playback apparatus 
which does not have the authentication processing 
function or the master key Km. 

20 [0109] Also, even if the data of the data area and 
the lead-in area of the optical disk 1 is illegally copied as 
it is into a new disk, since the random pattern informa- 
tion recorded in the random-pattern-information record- 
ing part 4 of the optical disk 1 is from a random physical 

25 phenomenon, it is not possible to detect, from the ran- 
dom-pattern-information recording part of the new disk, 
the same random pattern information as the random 
pattern information recorded in the random-pattern- 
information recording part 4 of the optical disk 1 even if 

30 the new disk is an authorized one including a random- 
pattern-information recording part. Therefore, an ille- 
gally copied disk is not played back by the authorized 
playback apparatus. 

[0110] Here, in the optical disk recording/playback 

35 apparatus 20, the encryption part 30 creates the effec- 
tive master key Kem from the master key Km on the 
basis of the medium identification information DiscID of 
the optical disk 1 which is authenticated by the authen- 
tication processing part 26, encrypts the disk key Kd by 

40 this effective master key Kem, encrypts an encryption 
key used for encrypting the user data, that is, the sector 
key Ks, by the disk key Kd, and records the user data 
encrypted by the sector key Ks, the encrypted disk key 
Kd, and the sector key Ks on the optical disk 1 . How- 

45 ever, the user data may be encrypted based on the 
medium identification information DiscID of the optical 
disk 1 which is authenticated by the authentication 
processing part 26. For example, as shown in FIG. 13, 
there is provided an effective sector key creation part 

50 1 30 (Kes creation circuit) for creating an effective sector 
Kes from the sector key Ks generated as a random 
number in the random number generation circuit 32 on 
the basis of the effective master key Kem. The content 
data encryption circuit 35 uses the effective sector key 

55 Kes created by the sector key creation circuit 130 to 
encrypt user data and create encrypted content data. 
[0111] In this case, as shown in FIG. 14, the 
decryption part 40 is provided with an effective sector 
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key creation circuit (Kes creation circuit) 140 for creating 
an effective sector key Kes from the sector key Ks on 
the basis of the effective master key Kem. The EKs 
decryption circuit 44 uses the disk key Kd to create a 
sector key Ks by decrypting the encrypted sector key 5 
EKs read by the recording/playback head 23 from the 
data area of the optical disk 1 . From this sector key Ks, 
the effective sector key creation circuit 140 creates an 
effective sector key Kes. Using this effective sector key 
Kes, the content data decryption circuit 45 decrypts the w 
encrypted content data. 

[0112] Although in the above-described embodi- 
ment, the present invention is applied to a record- 
ing/playback system using the optical disk 1 
constructed as shown in FIG. 1, it is also possible to 15 
construct a recording/playback system using a card- 
shaped recording medium 51 such as that shown in 
FIG. 15. 

[01 13] More specifically, this card-shaped recording 
medium 51 shown in FIG. 13 comprises a user data 20 
recording part 53 in which user data is recorded, a ran- 
dom-pattern-information recording part 54 in which ran- 
dom pattern information from a random physical 
phenomenon is recorded, and an authentication data 
recording part 55 in which medium identification infor- 25 
mation created on the basis of the random pattern infor- 
mation detected from the random -pattern -information 
recording part 54, and the digital signature for each 
manufacturer with respect to the medium identification 
information are recorded as authentication data. 30 
[01 1 4] Like the above-described optical disk record- 
ing/playback system, the recording/playback system 
using the card-shaped recording medium 51 with such a 
construction detects random pattern information based 
on random physical phenomena from the random-pat- 35 
tern -information recording part 54, and creates medium 
identification information from the random pattern infor- 
mation. Furthermore, authentication data is read from 
the authentication data recording part 55 on the infor- 
mation recording medium, and authentication process- 40 
ing for the information recording medium can be 
performed based on the medium identification informa- 
tion created from the random pattern information and 
the authentication data. An encryption key is created 
from the medium identification information of the infor- 45 
mation recording medium authenticated by the authen- 
tication processing, and data which is encrypted with 
the encryption key is recorded/read via the user data 
recording part 53 on the authenticated information 
recording medium, making it possible to reliably prevent so 
illegal copying of the information of the user data 
recording part 53. 

[0115] As has been described above in detail, the 
embodiment of the present invention detects random 
pattern information based on random physical phenom- 55 
ena from the random-pattern -information recording part 

on the information recording medium which is provided 
with a random-pattern-information recording part 



including recorded therein random pattern information 
based on random physical phenomena, creates 
medium identification information from the random pat- 
tern information, and records, as authentication data, 
the medium identification information, together with a 
digital signature for each manufacturer with respect to 
the medium identification information, in the authentica- 
tion data recording part on the information recording 
medium, making it possible to provide an information 
recording medium which records, as authentication 
data, medium identification information, together with a 
digital signature for each manufacturer with respect to 
the medium identification information, in the authentica- 
tion data recording part. Then, with respect to the infor- 
mation recording medium including a random-pattern- 
information recording part including recorded therein 
random pattern information from a random physical 
phenomenon, an authentication data recording part 
including stored therein medium identification informa- 
tion created based on the random pattern information 
detected from the random-pattern-information recording 
part, and a digital signature for each manufacturer with 
respect to the medium identification information as 
authentication data, and a user data recording part in 
which user data is recorded, random pattern information 
based on random physical phenomena is detected from 
the random-pattern-information recording part, medium 
identification information is created from the random 
pattern information, and authentication data is read 
from the authentication data recording part on the infor- 
mation recording medium, and authentication process- 
ing for the information recording medium can be 
performed based on the medium identification informa- 
tion created from the random pattern information and 
the authentication data. An encryption key is created 
from the medium identification information on the infor- 
mation recording medium authenticated by the authen- 
tication processing, and data which is encrypted with 
the encryption key is recorded/read via the user data 
recording part on the authenticated information record- 
ing medium, making it possible to construct an illegal- 
copying prevention system which is also effective for 
writable media. 

Claims 

1. An information recording/playback system for 
recording and playing back information, compris- 
ing: 

an authentication data recording control part 
which provides control of detecting random 
pattern information based on random physical 
phenomena from a random-pattern-information 
recording part used for recording random pat- 
tern information based on random physical 
phenomena, creating medium identification 
information from the random pattern informa- 
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tion, and recording, as authentication data, the 

mediuiTi identification infornnation in an authen- 
tication data recording part on the infornnation 
recording medium; 

an authentication processing part which 5 
detects the random pattern information from 
the random-pattern-information recording part, 
creates medium-identification-information veri- 
fication data from the random pattern informa- 
tion, reads authentication data from the io 
authentication data recording part on the infor- 
mation recording medium, and performs 
authentication processing for the information 
recording medium based on medium-identifica- 
tion-information verification data created from is 
the random pattern information and based on 
the authentication data; and 
an information recording/playback control part 
which provides control of recording information 
on an information recording medium and play- 20 
ing back information from an information 
recording medium based on an authentication 
result from the authentication processing part. 

2. The information recording/playback system accord- 25 
ing to claim 1 , wherein there is further provided an 
encryption part which encrypts information by using 
medium identification information from an informa- 
tion recording medium authenticated by the authen- 
tication processing, and 30 
wherein the information recording/playback control 
part provides control of recording information 
encrypted by the encryption part on the authenti- 
cated information recording medium. 

35 

3. The information recording/playback system accord- 
ing to claim 2, wherein the information record- 
ing/playback control part provides control of 
recording encrypted information and the encryption 
key used for information encryption on the authenti- 40 
cated information recording medium. 

4. The information recording/playback system accord- 
ing to claim 3, wherein the encryption part encrypts 
information using the encryption key and encrypts 45 
the encryption key used for information encryption 

by using medium identification information on an 
information recording medium authenticated by the 
authentication processing, 

wherein the information recording/playback control so 
part provides control of recording information 
encrypted with the encryption key and the 
encrypted encryption key on the authenticated 
information recording medium. 

55 

5. The information recording/playback system accord- 
ing to claim 2, wherein the encryption part creates 
an encryption key used for the information encryp- 



tion by using medium identification information on 
an information recording medium authenticated by 
the authentication processing. 

6. The information recording/playback system accord- 
ing to claim 1, wherein there is further provided a 
decryption part for decrypting information by using 
medium identification information on an information 
recording medium authenticated by the authentica- 
tion processing, 

wherein the information recording/playback control 
part provides control of reading encrypted informa- 
tion from the authenticated information recording 
medium, and 

wherein the decryption part decrypts encrypted 
information read by the information recording/play- 
back control part from an information recording 
medium by using medium identification information 
on an information recording medium authenticated 
by the authentication processing. 

7. The information recording/playback system accord- 
ing to claim 6, characterized in that the information 
recording/playback control part provides control of 
reading encrypted information and the encryption 
key used for information encryption from the 
authenticated information recording medium. 

8. The information recording/playback system accord- 
ing to claim 7, wherein the information record- 
ing/playback control part provides control of 
reading encrypted information and the encrypted 
encryption key from the information recording 
medium, and 

wherein the decryption part decrypts a read and 
encrypted encryption key by using medium identifi- 
cation information on an information recording 
medium authenticated by the authentication 
processing and decrypts encrypted information by 
using the encryption key which was encrypted and 
information thereof is decrypted. 

9. The information recording/playback system accord- 
ing to claim 1, wherein the authentication data 
recording control part records, as authentication 
data, the medium identification information together 
with a digital signature of a recording person who 
recorded the medium identification information in 
the authentication data recording part on the infor- 
mation recording medium. 

10. An information recording/playback system accord- 
ing to claim 9, wherein the authentication data 
recording control part records a digital signature for 
a manufacturer of the information recording 
medium as a digital signature for a recording per- 
son who recorded the medium identification infor- 
mation. 
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11. An information recording apparatus for recording 

information on an information recording medium 
including a random-pattern-information recording 
part for recording random pattern information 
based on random physical phenomena and an 5 
authentication data recording part for storing, as 
authentication data, medium identification informa- 
tion generated according to random pattern infor- 
mation detected from the random-pattern- 
information recording part, wherein the information w 
recording apparatus is , comprising: 

a random-pattern-information detection part 

which detects random pattern information from 

a random-pattern-information recording part on 15 

an information recording medium; 

a verification data creation part which creates 

medium-identification -information verification 

data from random pattern information detected 

by the random-pattern-information detection 20 

part; 

an authentication processing part which reads 
authentication data from an authentication data 
recording part on an information recording 
medium, performs authentication processing 25 
for an information recording medium based on 
medium-identification-information verification 
data created by the verification data creation 
part and based on the authentication data, and 
controls whether to write information onto an 30 
information recording medium based on an 
authentication result; and 
a recording control part which provides control 
of recording information on an information 
recording medium. 35 

12. The information recording apparatus according to 
claim 11, wherein there is further provided an 
encryption part which encrypts information by using 
medium identification information on an information 40 
recording medium authenticated by the authentica- 
tion processing, and 

wherein the recording control part provides control 

of recording information encrypted by the encryp- 
tion part on the authenticated information recording 45 
medium. 

13. The information recording apparatus according to 

claim 12, wherein the recording control part pro- 
vides control of recording encrypted information so 
and the encryption key used for information encryp- 
tion on the authenticated information recording 
medium. 

14. The information recording apparatus according to 55 
claim 13, wherein the encryption part encrypts 

information by using the encryption key and 
encrypts the encryption key used for information 



encryption by using medium identification informa- 
tion on an information recording medium authenti- 
cated by the authentication processing, and 
wherein the recording control part provides control 
of recording information encrypted with the encryp- 
tion key and the encrypted encryption key on the 
authenticated information recording medium. 

15. The information recording apparatus according to 

claim 12, characterized in that the encryption part 
creates an encryption key used for the information 
encryption by using medium identification informa- 
tion on an information recording medium authenti- 
cated by the authentication processing. 

16. The information recording apparatus according to 
claim 11, wherein that the authentication process- 
ing part verifies validity of the medium identification 
information with respect to an information recording 
medium which records, as authentication data, the 
medium identification information together with a 
digital signature of a recording person who 
recorded the medium identification information 
based on the recording person's digital signature, 
and performs authentication processing with 
respect to an information recording medium based 
on medium-identification-information verification 
data created by the verification data creation part 
and based on verified valid medium identification 
information. 

17. The information recording apparatus according to 
claim 16, wherein the authentication processing 
part verifies validity of the medium identification 
information with respect to an information recording 
medium which records a digital signature of a man- 
ufacturer for the information recording medium as a 
digital signature for a recording person of the 
medium identification information based on the 
manufacturer's digital signature. 

18. The information recording apparatus according to 
claim 16, wherein the authentication processing 
part performs authentication processing with 
respect to an information recording medium which 
records a revocation list about a recording person 
together with the authentication data based on the 
revocation list. 

19. The information recording apparatus according to 
claim 18, wherein the authentication processing 
part has a storage part for storing the revocation 
list, stores a revocation list recorded on an informa- 
tion recording medium in the storage part when this 
revocation list is valid and is newer than the revoca- 
tion list stored in the storage part, and performs 
authentication processing based on the revocation 
list stored in the storage part. 
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20. An information playbacl< apparatus for playing back 
information from an information recording medium 
including a random-pattern-information recording 
part for recording random pattern information 
based on random physical phenomena and an 
authentication data recording part for storing, as 
authentication data, medium identification informa- 
tion created according to random pattern informa- 
tion detected from the random -pattern -information 
recording part, wherein the information playback 
apparatus, 

a random-pattern-information detection part 
which detects random pattern information from 
the random -pattern -information recording part 
on the information recording medium; 
a verification data creation part which creates 
medium-identification-information verification 
data from random-pattern -information detected 
by the random-pattern-information detection 
part; 

an authentication processing part which reads 
authentication data from the authentication 
data recording part and performs authentica- 
tion processing with respect to an information 
recording medium based on medium-identifica- 
tion-information verification data created by the 
verification data creation part and based on the 
authentication data; and 
a playback control part which provides control 
of reading information from an information 
recording medium. 

21. The information playback apparatus according to 
claim 20, wherein the playback control part pro- 
vides control of reading encrypted information from 
the authenticated information recording medium, 
and 

wherein the decryption part decrypts encrypted 
information read from the information recording 
medium by the playback control part by using 
medium identification information on the informa- 
tion recording medium authenticated by the authen- 
tication processing. 

22. The information playback apparatus according to 
claim 21, wherein the playback control part pro- 
vides control of reading encrypted information and 
an encryption key used for the information encryp- 
tion from the authenticated information recording 
medium. 

23. The information playback apparatus according to 
claim 22, wherein the playback control part pro- 
vides control of reading encrypted information and 
the encrypted encryption key from the authenti- 
cated information recording medium, and 
wherein the decryption part decrypts a rea& and 



encrypted encryption key by using medium identifi- 
cation information on an information recording 
medium authenticated by the authentication 
processing and decrypts encrypted information by 
5 using the encryption key which was encrypted and 

information thereof is decrypted. 

24. The information playback apparatus according to 
claim 20, wherein the authentication processing 

10 part verifies validity of the medium identification 
information with respect to an information recording 
medium which records, as authentication data, the 
medium identification information together with a 
digital signature of a recording person who 

15 recorded the medium identification information 
based on the recording person's digital signature, 
and performs authentication processing with 
respect to the information recording medium based 
on medium-identification-information verification 

20 data created by the verification data creation part 
and based on verified valid medium identification 
information. 

25. The information playback apparatus according to 
25 claim 24, wherein the authentication processing 

part verifies validity of the medium identification 
information with respect to an information recording 
medium which records a digital signature of a man- 
ufacturer for the information recording medium as a 
30 digital signature for a recording person of the 
medium identification information based on the 
manufacturer's digital signature. 

26. The information playback apparatus according to 
35 claim 24, wherein the authentication processing 

part performs authentication processing with 
respect to an information recording medium which 
records a revocation list about a recording person 
together with the authentication data based on the 
40 revocation list. 

27. The information playback apparatus according to 
claim 26, wherein the authentication processing 
part has a storage part for storing the revocation 

45 list. Stores a revocation list recorded on an informa- 
tion recording medium in the storage part when this 
revocation list is valid and is newer than the revoca- 
tion list stored in the storage part, and performs 
authentication processing based on the revocation 

50 list stored in the storage part. 

28. An authentication data recording apparatus for 
recording authentication information on an informa- 
tion recording medium, comprising: 

55 

a random-pattern-information detection part 

which detects random pattern information from 
a random-pattern-information recording part on 



14 



27 



EP 1 069 567 A1 



28 



an information recording medium for storing 
random pattern information based on random 
physical phenomena; 

a medium identification information creation 
part which creates medium identification infor- 
mation from the random pattern information 
detected by the random -pattern -information 
detection part; and 

an authentication data recording control part 
which provides control of recording, as authen- 
tication data, the medium identification infor- 
mation created by the medium identification 
information creation part in an authentication 
data recording part on the information record- 
ing medium. 

29. The authentication data recording apparatus 
according to claim 28, wherein the authentication 
data recording control part records, as authentica- 
tion data, the medium identification information 
together with a digital signature for a recording per- 
son of the medium identification information in an 
authentication data recording part on the informa- 
tion recording medium. 

30. The authentication data recording apparatus 
according to claim 28, characterized in that the 
authentication data recording control part records a 
digital signature for a manufacturer of the informa- 
tion recording medium as a digital signature for a 
recording person of the medium identification infor- 
mation. 

31. The authentication data recording apparatus 
according to claim 28, wherein the authentication 
data recording control part records a revocation list 
about a manufacturer together with the authentica- 
tion data in an authentication data recording part on 
the information recording medium. 

32. An authentication processing apparatus for per- 
forming authentication processing with respect to 
an information recording medium, comprising: 

a random-pattern-information detection part 
which detects random pattern information from 
a random-pattern-information recording part on 
the information recording medium; 
a verification data creation part which creates 
medium-identification-information verification 
data from random pattern information detected 
by the random-pattern-information detection 
part; and 

an authentication processing part which reads 
authentication data from an authentication data 
recording part on the information recording 
medium and performs authentication process- 
ing with respect to the information recording 



medium based on medium-identification-infor- 
mation verification data created by the verifica- 
tion data creation part and based on the 
authentication data. 

5 

33. The authentication processing apparatus according 
to claim 32, wherein the authentication processing 
part verifies validity of the medium identification 
information with respect to an information recording 

10 medium which records, as authentication data, the 
medium identification information together with a 
digital signature of a recording person who 
recorded the medium identification information 
based on the recording person's digital signature, 

15 and performs authentication processing with 
respect to the information recording medium based 
on medium-identification-information verification 
data created by the verification data creation part 
and based on verified valid medium identification 

20 information. 

34. The authentication processing apparatus according 
to claim 33, wherein the authentication processing 
part verifies validity of the medium identification 

25 information with respect to an information recording 
medium which records a digital signature of a man- 
ufacturer for the information recording medium as a 
digital signature for a recording person of the 
medium identification information based on the 

30 manufacturer's digital signature. 

35. The authentication processing apparatus according 
to claim 33, wherein the authentication processing 
part performs authentication processing with 

35 respect to an information recording medium which 
records a revocation list about a recording person 
together with the authentication data based on the 
revocation list. 

40 36. The authentication processing apparatus according 
to claim 35, wherein the authentication processing 
part has a storage part for storing the revocation 
list, stores a revocation list recorded on an informa- 
tion recording medium in the storage part when this 

45 revocation list is valid and is newer than the revoca- 
tion list stored in the storage part, and performs 
authentication processing based on the revocation 
list stored in the storage part. 

50 37. The authentication processing apparatus according 
to claim 35, wherein the authentication processing 
part has a storage part, stores a recording person's 
identification information and a public key thereof 
for a manipulated information recording medium 

55 together with a revocation flag, updates the revoca- 
tion flag using a new revocation list, and performs 
authentication processing based on the revocation 
list stored in the storage part. 
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38. An information recording/playbacl< method for 
recording and playing back information, compris- 
ing: 

an authentication data recording control proc- 5 
ess which provides control of detecting random 
pattern information based on random physical 
phenomena from a random-pattern-information 
recording part for recording random pattern 
information based on random physical phe- io 
nomena on an information recording medium, 
creating medium identification information from 
the random pattern information, and recording, 
as authentication data, the medium identifica- 
tion information in an authentication data is 
recording part on the information recording 
medium; 

an authentication process which detects the 
random pattern information from the random- 
pattern-information recording part, creates 20 
medium-identification-information verification 
data from the random pattern information, 
reads authentication data from the authentica- 
tion data recording part on the information 
recording medium, and performs authentica- 25 
tion processing with respect to the information 
recording medium based on medium-identifica- 
tion-information verification data created from 
the random pattern information and based on 
the authentication data; and 30 
an information recording/playbacl< control proc- 
ess which provides control of recording infor- 
mation on an information recording medium 
and playing back information from an informa- 
tion recording medium based on an authentica- 35 
tion result from the authentication processing 
process. 

39. The information recording/playback method 
according to claim 38, wherein there is further pro- 40 
vided an encryption process which encrypts infor- 
mation using medium identification information 
from an information recording medium authenti- 
cated by the authentication processing, and 

wherein the information recording/playback control 45 
process provides control of recording information 
encrypted by the encryption process on the authen- 
ticated information recording medium. 

40. The information recording/playback method so 
according to claim 39, wherein the information 
recording/playback control process provides control 

of recording encrypted information and the encryp- 
tion key used for information encryption on the 
authenticated information recording medium. 55 

41. The information recording/playback method 
according to claim 40, wherein the encryption proc- 



ess encrypts information using the encryption key 

and encrypts the encryption key used for informa- 
tion encryption using medium identification infor- 
mation on an information recording medium 
authenticated by the authentication processing, 
and 

wherein the information recording/playback control 
process provides control of recording information 
encrypted with the encryption key and the 
encrypted encryption key on the authenticated 
information recording medium. 

42. The information recording/playback method 
according to claim 39, wherein the encryption proc- 
ess creates the encryption key used for information 
encryption by using medium identification informa- 
tion on an information recording medium authenti- 
cated by the authentication processing. 

43. The information recording/playback method 
according to claim 38, wherein the information 
recording/playback control process provides control 
of reading encrypted information from the authenti- 
cated information recording medium, and 
wherein the decryption process decrypts encrypted 
information read by the information recording/play- 
back control process from an information recording 
medium by using medium identification information 
on an information recording medium authenticated 
by the authentication processing. 

44. The information recording/playback method 
according to claim 43, wherein the information 
recording/playback control process provides control 
of reading encrypted information and the encryp- 
tion key used for information encryption from the 
authenticated information recording medium. 

45. The information recording/playback method 
according to claim 44, wherein the information 
recording/playback control process provides control 
of reading encrypted information and the encrypted 
encryption key from the authenticated information 
recording medium, and 

wherein the decryption process decrypts a read 
and encrypted encryption key by using medium 
identification information on an information record- 
ing medium authenticated by the authentication 
processing and decrypts encrypted information by 
using the encryption key which was encrypted and 
information thereof is decrypted. 

46. The information recording/playback method 
according to claim 38, wherein the authentication 
data recording control process records, as authen- 
tication data, the medium identification information 
together with a digital signature for a recording per- 
son of the medium identification information in an 
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authentication data recording part on the infornna- 
tion recording medium. 

47. The information recording/playbacl< method 
according to claim 46, wherein the authentication 
data recording control process records a digital sig- 
nature for a manufacturer of the information record- 
ing medium as a digital signature for a recording 
person of the medium identification information. 

48. An information recording method for recording 
information on an information recording medium 
including: a random-pattern-information recording 
part which records random pattern information 
based on random physical phenomena; and an 
authentication data recording part which stores, as 
authentication data, medium identification informa- 
tion created according to random pattern informa- 
tion detected from the random -pattern -information 
recording part, wherein the information recording 
method, comprising: 

a random-pattern-information detection proc- 
ess which detects random pattern information 
from a random-pattern-information recording 
part on an information recording medium; 
a verification data creation process which cre- 
ates medium-identification-information verifica- 
tion data from random pattern information 
detected by the random -pattern -information 
detection process; 

an authentication process which reads authen- 
tication data from the authentication data 
recording part on an information recording 
medium, performs authentication processing 
for an information recording medium based on 
medium-identification-information verification 
data created by the verification data creation 
process and based on the authentication data, 
and controls whether to enable writing informa- 
tion onto an information recording medium 
based on an authentication result; and 
a recording control process which provides 
control of recording information onto an infor- 
mation recording medium. 

49. The information recording method according to 
claim 48, wherein there is further provided an 
encryption process which encrypts information 
using medium identification information from an 
information recording medium authenticated by the 
authentication processing, and 

wherein the recording control process provides 
control of recording information authenticated by 
the encryption process on the authenticated infor- 
mation recording medium. 

50. The information recording method according to 



claim 49, characterized in that the recording control 

process provides control of recording encrypted 
information and the encryption key used for infor- 
mation encryption on an authenticated information 
5 recording medium. 

51. The information recording method according to 
claim 50, wherein the encryption process encrypts 
information using the encryption key and encrypts 

10 the encryption key used for information encryption 
using medium identification information on an infor- 
mation recording medium authenticated by the 
authentication processing, and 
wherein the recording control process provides 

15 control of recording information encrypted with the 
encryption key and the encrypted encryption key on 
the authenticated information recording medium. 

52. The information recording method according to 
20 claim 49, wherein the encryption process creates 

an encryption key used for the information encryp- 
tion by using medium identification information on 
an information recording medium authenticated by 
the authentication processing. 

25 

53. An information recording method according to claim 
48, characterized in that the authentication process 
verifies validity of the medium identification infor- 
mation with respect to an information recording 

30 medium which records, as authentication data, the 
medium identification information together with a 
digital signature of a recording person who 
recorded the medium identification information 
based on the recording person's digital signature, 

35 and performs authentication processing with 
respect to the information recording medium based 
on medium-identification-information verification 
data created by the verification data creation proc- 
ess and based on verified valid medium identifica- 

40 tion information. 

54. The information recording method according to 
claim 53, wherein the authentication process veri- 
fies validity of the medium identification information 

45 with respect to an information recording medium 
which records a digital signature of a manufacturer 
for the information recording medium as a digital 
signature for a recording person of the medium 
identification information based on the manufac- 

50 turer's digital signature. 

55. The information recording method according to 
claim 53, wherein the authentication process per- 
forms authentication processing with respect to an 

55 information recording medium which records a rev- 
ocation list about a recording person together with 
the authentication data based on the revocation list. 
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56. The information recording method according to 

claim 55, wherein the authentication process stores 
a revocation list recorded on an information record- 
ing medium when this revocation list is valid and is 
newer than the already stored revocation list, and 5 
performs authentication processing based on the 
newly stored revocation list. 

57. An information playback method for playing back 

information from an information recording medium 10 
including a random-pattern-information recording 
part for recording random pattern information 
based on random physical phenomena and an 
authentication data recording part for storing, as 
authentication data, medium identification informa- 15 
tion created according to random pattern informa- 
tion detected from the random -pattern -information 
recording part, wherein the Information playback 
method, comprising: 

20 

a random-pattern-information detection proc- 
ess which detects random pattern information 
from a random-pattern-information recording 
part on an information recording medium; 
a verification data creation process which ere- 25 
ates medium-ldentiflcatlon-lnformation verifica- 
tion data from random pattern information 
detected by the random -pattern -information 
detection process; 

an authentication process which reads authen- 30 
ticatlon data from the authentication data 
recording part on an information recording 
medium and performs authentication process- 
ing for an information recording medium based 
on medlum-identlfication-informatlon verlfica- 35 
tion data created by the verification data crea- 
tion process and based on the authentication 
data; and 

a playback control process which provides con- 
trol of reading information from an information 40 
recording medium. 

58. The information playback method according to 

claim 57, wherein the playback control process pro- 
vides control of reading encrypted information from 45 
the authenticated information recording medium, 
and 

wherein the decryption process decrypts encrypted 
information read by the playback control process 
from an information recording medium by using so 
medium Identification information on an information 
recording medium authenticated by the authentica- 
tion processing. 

59. The information playback method according to 55 
claim 58, wherein the playback control process pro- 
vides control of reading encrypted information and 

the encryption key used for information encryption 



from the authenticated information recording 
medium. 

60. The information playback method according to 
claim 59, wherein the playback control process pro- 
vides control of reading encrypted Information and 
the encrypted encryption key from the information 
recording medium, and 

wherein the decryption process decrypts a read 
and encrypted encryption key by using medium 
identification information on an information record- 
ing medium authenticated by the authentication 
processing and decrypts encrypted information by 
using the encryption key which was encrypted and 
information thereof Is decrypted. 

61. The information playback method according to 
claim 57, wherein the authentication process veri- 
fies validity of the medium identification information 
with respect to an information recording medium 
which records, as authentication data, the medium 
identification information together with a digital sig- 
nature of a recording person who recorded the 
medium identification information based on the 
recording person's digital signature, and performs 
authentication processing with respect to an Infor- 
mation recording medium based on medlum-identl- 
fication-information verification data created by the 
verification data creation process and based on 
verified valid medium Identification Information. 

62. The information playback method according to 
claim 61, wherein the authentication process veri- 
fies validity of the medium identification information 
with respect to an Information recording medium 
which records a digital signature of a manufacturer 
for the information recording medium as a digital 
signature for a recording person of the medium 
identification information based on the manufac- 
turer's digital signature. 

63. The information playback method according to 
claim 61 , wherein the authentication process per- 
forms authentication processing with respect to an 
information recording medium which records a rev- 
ocation list about a recording person together with 
the authentication data based on the revocation list. 

64. The information playback method according to 
claim 63, wherein the authentication process stores 
a revocation list recorded on an information record- 
ing medium In the storage part when this revocation 
list is valid and is newer than the already stored rev- 
ocation list, and performs authentication processing 
based on the newly stored revocation list. 

65. An authentication data recording method for 
recording authentication information on an informa- 
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tion recording medium, comprising; 

a random-pattern-information detection proc- 
ess whicli detects random pattern information 
from a random-pattern-information recording 
part on an information recording medium stor- 
ing random pattern information based on ran- 
dom pliysical plienomena; 
a medium identification information creation 
process which creates medium identification 
information from the random pattern informa- 
tion detected by the random-pattern-informa- 
tion detection process; and 
an authentication data recording control proc- 
ess which provides control of recording, as 
authentication data, the medium identification 
information created by the medium identifica- 
tion information creation process in an authen- 
tication data recording part on the information 
recording medium. 

66. The authentication data recording method accord- 
ing to claim 65, wherein the authentication data 
recording control process records, as authentica- 
tion data, the medium identification information 
together with a digital signature for a recording per- 
son of the medium identification information in an 
authentication data recording part on the informa- 
tion recording medium. 

67. The authentication data recording method accord- 
ing to claim 66, wherein the authentication data 
recording control process records a digital signa- 
ture for a manufacturer of the information recording 
medium as a digital signature for a recording per- 
son of the medium identification information. 

68. The authentication data recording method accord- 
ing to claim 65, wherein the authentication data 
recording control process records a revocation list 
about a manufacturer together with the authentica- 
tion data in an authentication data recording part on 
the information recording medium. 

69. An authentication processing method for perform- 
ing authentication processing with respect to an 
information recording medium, comprising: 

a random-pattern-information detection proc- 
ess which detects random pattern information 
from a random-pattern-information recording 
part on an information recording medium; 
a verification data creation process which cre- 
ates medium-identification-information verifica- 
tion data from random pattern information 
detected by the random -pattern -information 
detection process; and 

an authentication process which reads authen- 



tication data from the authentication data 
recording part on an information recording 
medium and performs authentication process- 
ing for an information recording medium based 
5 on medium-identification-information verifica- 

tion data created by the verification data crea- 
tion process and based on the authentication 
data. 

10 70. The authentication processing method according to 
claim 69, wherein the authentication process veri- 
fies validity of the medium identification information 
with respect to an information recording medium 
which records, as authentication data, the medium 

15 identification information together with a digital sig- 
nature of a recording person who recorded the 
medium identification information based on the 
recording person's digital signature, and performs 
authentication processing with respect to an infor- 

20 mation recording medium based on medium-identi- 
fication-information verification data created by the 
verification data creation process and based on 
verified valid medium identification information. 

25 71. The authentication processing method according to 
claim 70, wherein the authentication process veri- 
fies validity of the medium identification information 
with respect to an information recording medium 
which records a digital signature of a manufacturer 

30 for the information recording medium as a digital 
signature for a recording person of the medium 
identification information based on the manufac- 
turer's digital signature. 

35 72. The authentication processing method according to 

claim 70, wherein the authentication process per- 
forms authentication processing with respect to an 
information recording medium which records a rev- 
ocation list about a recording person together with 
40 the authentication data based on the revocation list. 

73. The authentication processing method according to 
claim 72, wherein the authentication process stores 
a revocation list recorded on an information record- 
45 ing medium in the storage part when this revocation 
list is valid and is newer than the already stored rev- 
ocation list, and performs authentication processing 
based on the newly stored revocation list. 

50 74. The authentication processing method according to 
claim 72, wherein the authentication process stores 
a recording person's identification information and 
a public key thereof for a manipulated information 
recording medium together with a revocation flag, 

55 updates the revocation flag using a new revocation 
list, and performs authentication processing based 
on the revocation list stored in the storage process. 
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75. An information recording mediunn for recording 
information, comprising: 

a random-pattern-information recording part 
which records random pattern information 5 
based on random physical phenomena; 
an authentication data recording part which 
stores, as authentication data, medium identifi- 
cation information created according to random 
pattern information detected from the random- io 
pattern-information recording part; and 
an information recording part which records 
information. 

76. The information recording medium according to is 
claim 75, wherein the authentication data recording 
part records the medium identification information 

as authentication data together with a digital signa- 
ture for a recording person of the medium identifica- 
tion information. 20 

77. The information recording medium according to 

claim 76, wherein the authentication data recording 
part records a digital signature for a manufacturer 
of the information recording medium as a digital sig- 25 
nature for a recording person of the medium identi- 
fication information. 

78. The information recording medium according to 
claim 77, wherein the authentication data recording 30 
part records a revocation list about a manufacturer 
together with the authentication data. 
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